dj-rest-auth
drf-yasg
Our great sponsors
dj-rest-auth | drf-yasg | |
---|---|---|
22 | 8 | |
1,568 | 3,316 | |
2.2% | - | |
6.1 | 1.5 | |
6 days ago | 23 days ago | |
Python | Python | |
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dj-rest-auth
-
Can someone help me understand CSRF security? (context inside)
I am using dj-rest-auth for authentication. I am using JWT token authentication. All advice on JWT tokens is to not store them in local storage. Instead, using this package I store them in HttpOnly cookie. Now, I am apparently vulnerable to CSRF attack. So I enable JWT_AUTH_COOKIE_USE_CSRF. This checks the CSRF token on authenticated requests. However, there is still the potential vulnerability known as "login CSRF" as detailed by this issue on Github. In order to account for this, there is another setting called JWT_AUTH_COOKIE_ENFORCE_CSRF_ON_UNAUTHENTICATED. This enforces CSRF on unauthenticated views (such as login).
-
Social authentication in django rest framework.
Try to use https://github.com/iMerica/dj-rest-auth
-
djoser is dead?
I was using djoser in the past. Now Im using very similar dj-rest-auth https://github.com/iMerica/dj-rest-auth
- How can I add Login/Register/Logout endpoints?
-
How can I add Login/Register/Logout endpoint
you can use this.
-
How could we do a reliable social authentication api with custom user model?
I found the dj-rest-auth as a method of making a rest auth api, unfortunately when using the documentation I have this error coming up.
-
Login error when using Google OAuth with dj-rest-auth. Getting "redirect_uri_mismatch" error but the callback url seems to be configured correctly
I've followed the documentation: https://dj-rest-auth.readthedocs.io/en/latest/index.html
-
Django REST Framework and JS Framework (React here) authentication.
Right now, I'm using dj-rest-auth for Token based authentication. I store token in the localStorage. Earlier I was using djoser for adding auth in the project (I wrote article about my approach with djoser).
-
The Best GitHub Repositories For Django Developers.
Please use https://github.com/iMerica/dj-rest-auth as this project is no longer maintained. Thanks!
- Django with React Frontend
drf-yasg
-
Swagger for Django api
I believe drf-yasg what you need. You can create a schema manually and define request and response types for your small API.
-
How can one enable the html for apis that are not apiviewsets using django rest framework?
Check this out: https://drf-yasg.readthedocs.io/en/stable/
-
Separate project vs multiple apps on a single project
There's also the caveat of having different API documentation for both the frontend solution and the API-only solution, since I don't want to expose the frontend-specific endpoints to the API-only endpoints, but I think that might just take some time playing around with swagger: https://drf-yasg.readthedocs.io/en/stable/
-
Deploying Django Rest Framework with Postgres on fly.io
Swagger and OpenAPI capabilities using drf-yasg, where you can only see endpoints and Swagger docs if you have a valid Token
- does anyone find a way to use swagger ui
-
Beautiful Hackernews UI: Working with Hackernews API in Python (Django)
The major apps are news and accounts. While the former handles almost all the physical functionalities of the system, the latter only does user stuff. The api app exposes the data for consumption. It is documented using drf-yasg, a Swagger generation tool implemented without using the schema generation provided by Django Rest Framework. The api has a token-based authentication which requires that all POST requests must provide a token to be accepted, otherwise a not too interesting response:
-
Keeping Documentation Debt At Bay & Clients Happy
Our RESTful API was actually the easiest to document, because we were able to rely on third-party libraries from the start. It was a Python Django and Django REST Framework project that leveraged the drf-yasg OpenAPI generator library to create OpenAPI and Swagger compatible documentation.
-
Documenting Django Rest Framework API
This post will go through how to document your DRF APIs using https://github.com/axnsan12/drf-yasg/ package.
What are some alternatives?
django-rest-framework-simplejwt - A JSON Web Token authentication plugin for the Django REST Framework.
drf-spectacular - Sane and flexible OpenAPI 3 schema generation for Django REST framework.
django-two-factor-auth - Complete Two-Factor Authentication for Django providing the easiest integration into most Django projects.
Django REST Swagger - Swagger Documentation Generator for Django REST Framework: deprecated
django-auth-adfs - A Django authentication backend for Microsoft ADFS and AzureAD
swagger-ui - Swagger UI is a collection of HTML, JavaScript, and CSS assets that dynamically generate beautiful documentation from a Swagger-compliant API.
django-nuxt-starter
redoc - 📘 OpenAPI/Swagger-generated API Reference Documentation
django-oauth-toolkit-spa - A set of out-of-box REST endpoints for auth operations, providing refresh token in HttpOnly cookie and access token in body, perfect for SPA web apps. Built on top of models provided by django-oauth-toolkit.
drf-nested-routers - Nested Routers for Django Rest Framework
django-sesame - "Magic Links" - URLs with authentication tokens for one-click login
django-rest-framework - Web APIs for Django. 🎸